It is highly recommended to restart your computer after a standardsystem upgrade to effect the necessary changes. If you cannot affordto do that then you need to restart all server processes which useTLS or SSL.

Details follow:

Evgeny Legerov discovered a buffer overflow in the DER format decodingfunction of the libtasn library. This library is mainly used by theGNU TLS library; by sending a specially crafted X.509 certificate to aserver which uses TLS encryption/authentication, a remote attackercould exploit this to crash that server process and possibly evenexecute arbitrary code with the privileges of that server.

In order to fix the vulnerability in libtasn, several internalfunction signatures had to be changed; some of these functions areused by the GNU TLS library, so that library needs to be updated aswell.